Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bbb3a1bf311f183cceeda27280e50c80_NeikiAnalytics

  • Size

    199KB

  • Sample

    240513-r3y8jsbe73

  • MD5

    bbb3a1bf311f183cceeda27280e50c80

  • SHA1

    cb31d292a03e0358a6ebdf3223ec3759a32cdc5d

  • SHA256

    afc341f5f48a1325ff8167bc587dc6c1f213d30b23b04bbe1c3e906b421c1e0d

  • SHA512

    6e36ca31697eb1ab82b4ce9f98647ccd9544ce94b17052843445e4f4cea184572a4bf17fc76a720c0e41f155cadf161414e6a071b0b4efae9b7249faf87b764d

  • SSDEEP

    6144:tAZME41SZSCZj81+jq4peBK034YOmFz1h:tAqgZSCG1+jheBbOmFxh

Malware Config

Targets

    • Target

      bbb3a1bf311f183cceeda27280e50c80_NeikiAnalytics

    • Size

      199KB

    • MD5

      bbb3a1bf311f183cceeda27280e50c80

    • SHA1

      cb31d292a03e0358a6ebdf3223ec3759a32cdc5d

    • SHA256

      afc341f5f48a1325ff8167bc587dc6c1f213d30b23b04bbe1c3e906b421c1e0d

    • SHA512

      6e36ca31697eb1ab82b4ce9f98647ccd9544ce94b17052843445e4f4cea184572a4bf17fc76a720c0e41f155cadf161414e6a071b0b4efae9b7249faf87b764d

    • SSDEEP

      6144:tAZME41SZSCZj81+jq4peBK034YOmFz1h:tAqgZSCG1+jheBbOmFxh

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks